Rootkit. Reinstalling OS. Is this the right disc?

R

Rayne94

Beta member
Messages
4
I had a rootkit a couple months back.
I'm pretty sure there is something still there even though I paid to have it removed.
TDSSKiller finds nothing.
Avast! and Malwarebytes find nothing.
I think I need to reinstall the OS.
I have Windows XP, Home Edition, Service Pack 2
Is this the correct disc? http://www.amazon.com/Windows-Recovery-P…
If not can you show me the right one?

And, is reinstalling the OS self explanatory?

Thanks!
 
Nope, not working for me either.

Before you reinstall (or think more about it) have you tried combofix from bleepingcomputer.com?
 
Instructions and the download link are all here: A guide and tutorial on using ComboFix. I don't know the specifics on how much of anything it removes. All I know is that it has been my ace in the hole many times to remove stubborn viruses.

As for the disk, I don't trust that. It says windows XP, but then goes off to list Home Basic, Premium etc which XP didn't come in.

A very quick google search didn't give me any sites that I'd trust to buy, or even a legally free download for XP. You might need to contact the manufacturer of the system to get a disk if it comes to that.
 
Thanks. First let me tell you exactly what was (and is) going on.
I was using my computer and it started freezing up really bad, then those pop-ups saying I'm infected and need to download their anti-virus to fix myself kept coming up. (No, I didn't click them.) I tired different scanners in safe mode and got rid of those, but my computer was giving me the blue screen of death, freezing, etc.
I took the computer to get fixed, was told I had a nasty rootkit, and paid to have it removed.
For a few days later: My computer would turn on, load the wallpaper, and not load the icons for 5 mins later. It also redirected my google.
Those two problems went away, now however my computer turns on at a normal speed...but takes five minutes for my icon tray, local area connection, etc to load; volume control doesn't load at all even though it's always set to show.
Maybe there's an easy fix to this? There are two other computers connected to the modem (one is wireless) and neither have this problem.

Rayne

I run frequent scans of Avast! and Malwarebytes, they don't seem to find anything. Last week a scan of TDSSKiller with changed parameters to include "Detect TDLFS File System" found this:

Threats detected:

TDSS File System
Physical Drive: \Device\Harddisk0\Dr0
Suspicious Object - Medium Risk

Which I had it delete. If that bit of info is useful.
 
I want to second ComboFix. I love it, use it all the time. If you can not download ComboFix, simply run it from a jump drive. (download it on another computer)

-Q
 
You must log in or register to reply here.

Similar threads

P
Blue screen error again?
2
Replies
16
Views
2K
phantom555
P
O
How an accident damages one motherboard and the damage affects another one?
Replies
8
Views
1K
DomniCruper
D
D
The application is unable to start correctly (0xc000007b)
Replies
4
Views
1K
petergroft29
P
A
Acer Spin 5
Replies
2
Views
1K
pete.i
P
K
Is this a normal performance with this config? What could be the problem?
Replies
0
Views
1K
Kerygam
K
Back
Top Bottom